Barracuda launches unified AI platform amid security tool sprawl
Barracuda has released findings from a research study showing that a majority of organisations are struggling to manage an excess of security tools, with many finding that these tools are not integrated effectively.
The survey, conducted by research firm Vanson Bourne, found that 65% of IT and security professionals face challenges due to running too many security tools. Additionally, 53% reported that their tools were unable to be integrated, leading to fragmented security environments that are both difficult to manage and secure.
The responses came from 2,000 senior security decision-makers globally and highlight broader concerns over the operational and financial repercussions of security tool sprawl. According to the research, 80% of respondents indicated that a lack of integration between tools increased the time needed to manage their organisation's security, and 81% said this resulted in higher overall costs.
The impact on security operations was also significant, with 77% of those surveyed saying detection of threats was hindered by fragmented systems, and 78% noted difficulties in mitigating threats. Only 32% of respondents expressed full confidence in the proper configuration of their security tools, suggesting that many organisations may be vulnerable to breaches due to misconfiguration.
The research also explored the role of managed service providers (MSPs) in reducing the complexity caused by multiple security tools, as well as identifying sectors that are most affected by this issue.
Barracuda has responded to these findings by launching the BarracudaONE AI-powered cybersecurity platform, which aims to provide integrated threat protection and cyber resilience across its portfolio of products. The platform is intended for both MSPs and end users and centralises various security functions to simplify management and reduce the administrative burden.
Neal Bradbury, Chief Product Officer at Barracuda, commented on the findings: "This research serves as a stark wake-up call for organisations still relying on disconnected, siloed security tools. Managing a patchwork of solutions drives up costs and complexity while creating blind spots that attackers are quick to exploit. Security teams simply cannot afford to waste time switching between systems while critical threats go undetected."
"The path forward is clear: consolidation and integration are essential for cyber resilience. That is exactly why we built BarracudaONE – to improve security operations, reduce risk and enable teams to secure their environments faster and more effectively. We are cutting through the complexity, closing critical gaps and empowering organisations with the confidence and control they need to stay ahead of evolving threats."
The BarracudaONE platform unifies Barracuda's security solutions into a single interface, offering layered threat protection that is managed from a central dashboard. This consolidation is designed to reduce operational complexity, bolster visibility, and strengthen overall cyber resilience.
The platform incorporates advanced artificial intelligence that provides detailed threat detection and response, as well as automated intelligence capabilities. Barracuda says its AI has been refined over numerous real-world deployments and now powers robust reporting features to help security teams and partners assess the effectiveness of their threat defences, ROI, and operational impact. These insights are intended to help organisations validate their security postures and make informed decisions.
William Mann, Chief Information Security Officer at the Borough of West Chester, Pennsylvania, described his experience with the platform: "BarracudaONE is a shields-up force multiplier that helps us safeguard critical municipal services – including our police dispatcher center, police and fire departments, as well as wastewater, finance and other essential operations. The ability to manage multiple security modules through a single, centralised dashboard is transformational."
"Barracuda Email Protection's incident response capabilities are mission-critical, and with BarracudaONE, they're more accessible, faster and easier to manage. The streamlined experience of having fewer clicks and faster insights enables us to prioritise threats and respond with the speed and precision our first responders, government teams and community depend on."
Adam Butler, Principal Cyber Solutions Architect at ARO, also commented: "BarracudaONE brings all our Barracuda solutions into a unified, powerful platform – delivering centralised visibility, real-time alerts and actionable reporting. It represents a major step forward for our customers, and an even greater advantage for us as an MSP overseeing thousands of customer environments. With BarracudaONE, we can pinpoint security gaps faster, prioritise alerts with greater accuracy and generate high-value reports in seconds."
BarracudaONE is now available at no additional cost to MSPs, channel partners, and customers already using certain Barracuda products, including Email Protection, Cloud-to-Cloud Backup, and Data Inspector. The platform provides a centralised interface for management of both solutions and licences.
Barracuda's managed extended detection and response (XDR) service, which offers 24/7 expert monitoring backed by Barracuda's security operations centre, is also offered to complement the platform and further enhance security postures for MSPs, partners and end users.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Techday NZ
a day ago
- Techday NZ
Phishing-as-a-Service drives surge in cybercrime for 2025
Barracuda Networks has released new details on the rising prevalence of Phishing-as-a-Service (PhaaS) attacks, the technologies underpinning them, and trends shaping cybercrime in 2025. The company's analysis found that an estimated 60% to 70% of all phishing attacks observed since the beginning of 2025 have been delivered using PhaaS models. Of these, the Tycoon 2FA phishing kit emerged as the most popular, responsible for 76% of the detected incidents. EvilProxy accounted for 8%, while Mamba 2FA and Sneaky 2FA together made up 6%. The remaining 10% consisted of other kits such as LogoKit, CoGUI and FlowerStorm. Understanding PhaaS Phishing-as-a-Service is a model in which individuals or groups provide ready-made phishing tools, infrastructure and support to customers for a fee, often via subscription services or one-off payments. This business-like approach means non-technical users can easily launch phishing campaigns without building infrastructure or writing code. According to the explainer released by Barracuda, "Phishing-as-a-Service, or PhaaS, is a cybercrime model where threat actors offer phishing tools, kits and services to other attackers, often via subscription or one-time payment. It lowers the barrier to entry for phishing attacks by providing ready-made templates, hosting, automation and even customer support. PhaaS enables non-technical users to launch sophisticated phishing campaigns, contributing to the rise in phishing incidents globally." Attackers typically access these services through forums, darknet markets, or messaging channels such as Telegram. The platforms provide templates for impersonating well-known brands and offer means to collect sensitive information entered by victims, which attackers can then use for financial gain or identity theft. The explainer notes, "Attackers sign up for this service — often through Darknet or Telegram channels — and obtain access to their PhaaS infrastructure. The service provides ready-made fake emails and websites that look just like real companies. The scammer can customise messages to make them convincing. Then, these fake emails or websites are sent out to lots of people. When someone falls for the trick and enters their private info, the scammer collects it and can steal money or identities." Barriers lowered PhaaS is popular with users seeking to commit credential theft but lacking the skills to develop phishing infrastructure from scratch. The systems are marketed not only at experienced cybercriminals, but also at individuals with limited technical knowledge, as the ease of use and available support bring phishing within reach of a broader group of criminal actors. "Attackers who want to do credential theft but don't know how to build the phishing emails, infrastructure to host fake Microsoft/Google login pages, steal multifactor-authentication (MFA) tokens and send them to a command-and-control server. Sometimes even people who aren't very tech-savvy can use PhaaS because it makes it easy for anyone to launch scams," the explainer says. PhaaS allows for rapid deployment of attacks, high levels of automation and large-scale targeting, including of small businesses and individual consumers. Typical victims range from employees at companies targeted for access to internal systems, to consumers receiving emails purporting to be from banks or popular online services. "It saves time and effort — they don't have to create complicated scam setups from scratch. It's often cheap or subscription-based, so it's easy to access. It's much easier now to launch a sophisticated phishing campaign targeting thousands of people with just a few clicks or minimal effort, compared to traditional phishing attacks. These modern attacks are highly advanced — they use clever methods to avoid detection and often rely on legitimate but compromised websites and platforms." Market forces PhaaS providers continually update their kits to bypass security measures, and competition between providers is fierce. Kits compete on factors such as price, accessibility, customer support, regular updates, and their ability to avoid detection. Subscription models and customer service functions have become normal, mirroring the software industry. "Kits that are cheaper or easier to get tend to attract more users. Some offer subscriptions, while others sell one-time licenses. The price and payment options matter a lot. Updates: Some PhaaS providers offer customer support and regularly update their kits to bypass new security measures. Kits that stay updated and provide help keep their users loyal. Success rates: If a kit is known for helping scammers avoid detection and successfully steal information, it gains popularity over others." Emerging kits and techniques Barracuda identified several new PhaaS kits, such as Darcula, which merges phishing with malware delivery and tends to target mobile users, and Morphing Meerkat, noted for altering its appearance to bypass email controllers. Other kits like CoGUI have been regionally tailored, such as those targeting Japanese organisations, and Sniper Dz is highlighted for mimicking the login pages of popular services. According to the explainer, "What makes these kits particularly dangerous is that they constantly evolve — updating their methods to avoid being detected by security systems. This ongoing development helps scammers stay one step ahead and makes it harder to shut them down." Detection strategies avoided PhaaS operators and their customers deploy techniques including encrypting malicious code, using code obfuscation, leveraging legitimate but compromised websites, and actively detecting when they are being monitored by security software or research sandboxes. In such cases, the kits will direct users to bona fide websites to avoid raising suspicion. The use of encryption and the adoption of real, trusted sites for hosting phishing content make detecting such threats more challenging for security tools, which traditionally focus on signature-based or heuristic detections of uncommon domains or content. Despite ongoing efforts by security professionals and law enforcement, the widespread distribution of PhaaS services and kits, international hosting, and frequent method changes continue to pose challenges for effective mitigation and takedown of phishing operations.
Techday NZ
04-06-2025
- Techday NZ
Barracuda launches unified AI platform amid security tool sprawl
Barracuda has released findings from a research study showing that a majority of organisations are struggling to manage an excess of security tools, with many finding that these tools are not integrated effectively. The survey, conducted by research firm Vanson Bourne, found that 65% of IT and security professionals face challenges due to running too many security tools. Additionally, 53% reported that their tools were unable to be integrated, leading to fragmented security environments that are both difficult to manage and secure. The responses came from 2,000 senior security decision-makers globally and highlight broader concerns over the operational and financial repercussions of security tool sprawl. According to the research, 80% of respondents indicated that a lack of integration between tools increased the time needed to manage their organisation's security, and 81% said this resulted in higher overall costs. The impact on security operations was also significant, with 77% of those surveyed saying detection of threats was hindered by fragmented systems, and 78% noted difficulties in mitigating threats. Only 32% of respondents expressed full confidence in the proper configuration of their security tools, suggesting that many organisations may be vulnerable to breaches due to misconfiguration. The research also explored the role of managed service providers (MSPs) in reducing the complexity caused by multiple security tools, as well as identifying sectors that are most affected by this issue. Barracuda has responded to these findings by launching the BarracudaONE AI-powered cybersecurity platform, which aims to provide integrated threat protection and cyber resilience across its portfolio of products. The platform is intended for both MSPs and end users and centralises various security functions to simplify management and reduce the administrative burden. Neal Bradbury, Chief Product Officer at Barracuda, commented on the findings: "This research serves as a stark wake-up call for organisations still relying on disconnected, siloed security tools. Managing a patchwork of solutions drives up costs and complexity while creating blind spots that attackers are quick to exploit. Security teams simply cannot afford to waste time switching between systems while critical threats go undetected." "The path forward is clear: consolidation and integration are essential for cyber resilience. That is exactly why we built BarracudaONE – to improve security operations, reduce risk and enable teams to secure their environments faster and more effectively. We are cutting through the complexity, closing critical gaps and empowering organisations with the confidence and control they need to stay ahead of evolving threats." The BarracudaONE platform unifies Barracuda's security solutions into a single interface, offering layered threat protection that is managed from a central dashboard. This consolidation is designed to reduce operational complexity, bolster visibility, and strengthen overall cyber resilience. The platform incorporates advanced artificial intelligence that provides detailed threat detection and response, as well as automated intelligence capabilities. Barracuda says its AI has been refined over numerous real-world deployments and now powers robust reporting features to help security teams and partners assess the effectiveness of their threat defences, ROI, and operational impact. These insights are intended to help organisations validate their security postures and make informed decisions. William Mann, Chief Information Security Officer at the Borough of West Chester, Pennsylvania, described his experience with the platform: "BarracudaONE is a shields-up force multiplier that helps us safeguard critical municipal services – including our police dispatcher center, police and fire departments, as well as wastewater, finance and other essential operations. The ability to manage multiple security modules through a single, centralised dashboard is transformational." "Barracuda Email Protection's incident response capabilities are mission-critical, and with BarracudaONE, they're more accessible, faster and easier to manage. The streamlined experience of having fewer clicks and faster insights enables us to prioritise threats and respond with the speed and precision our first responders, government teams and community depend on." Adam Butler, Principal Cyber Solutions Architect at ARO, also commented: "BarracudaONE brings all our Barracuda solutions into a unified, powerful platform – delivering centralised visibility, real-time alerts and actionable reporting. It represents a major step forward for our customers, and an even greater advantage for us as an MSP overseeing thousands of customer environments. With BarracudaONE, we can pinpoint security gaps faster, prioritise alerts with greater accuracy and generate high-value reports in seconds." BarracudaONE is now available at no additional cost to MSPs, channel partners, and customers already using certain Barracuda products, including Email Protection, Cloud-to-Cloud Backup, and Data Inspector. The platform provides a centralised interface for management of both solutions and licences. Barracuda's managed extended detection and response (XDR) service, which offers 24/7 expert monitoring backed by Barracuda's security operations centre, is also offered to complement the platform and further enhance security postures for MSPs, partners and end users.
Techday NZ
28-05-2025
- Techday NZ
Riverbed appoints Crighton to lead sales across Asia-Pacific
Riverbed has appointed Paul Crighton as Vice President Sales for Asia-Pacific and Japan as the company seeks to increase its presence for AI-powered observability and performance solutions in the region. Paul Crighton joins Riverbed with over 25 years of experience in sales leadership across the technology sector, having previously held senior roles at Barracuda, NetApp, Blackberry, PGi, Symantec, and Intel Security/McAfee. In his new role as Vice President Sales for Asia-Pacific and Japan, Crighton will oversee Riverbed's sales strategy and day-to-day operations within the region. He will report to Kris Luhrsen, Chief Revenue Officer at Riverbed. Kris Luhrsen said, "I'm delighted to welcome Paul to Riverbed as Vice President Sales for the APJ region. As an inspirational, people-centric leader, Paul has a proven track record in leading sales organisations, navigating complex markets, and forging strong customer and partners relationship across APJ. As Riverbed continues to invest in its AI-powered Platform and solutions, Paul will be instrumental in leading the APJ team to help our customers further leverage the Platform and Riverbed AI capabilities at scale, delivering significant business outcomes and ROI." Crighton expressed enthusiasm about his new position, stating, "I'm thrilled to be joining Riverbed at this really exciting time in the company's journey, delivering next-generation AIOps and observability solutions for our customers, as they look to streamline and improve their IT operations, and deliver exceptional digital experiences. The innovation agenda demonstrates the value customers are seeing in the Riverbed Platform. I look forward to working with our experienced team to execute on Riverbed's vision, drive value for our customers, and further extend the company's growth and market share in the region." The appointment comes as Riverbed expands its platform with new features designed to assist enterprises in managing complex hybrid environments. These additions include AIOps, data observability, and acceleration solutions. In April, Riverbed announced a significant extension of its platform, introducing AI-powered observability offerings that integrate Riverbed Generative, Predictive and Agentic AI, as well as enhanced data observability modules. The new modules support unified communications applications, network packet analysis, and compatibility with Intel Thunderbolt and Wi-Fi connected devices. Recent product launches from Riverbed include NPM+, which offers visibility into cloud, remote work, and zero trust architectures, Aternity Mobile for digital experience management of enterprise-owned mobile devices, Riverbed IQ Ops, Riverbed Unified Agent, and Aternity Intelligent Service Desk. This month, Riverbed introduced new and upgraded acceleration solutions aimed at increasing enterprise network performance, security, and IT adaptability. Notable advancements include RiOS 10, Riverbed's acceleration software for cloud, data centres, and edge environments; the SteelHead 90 series for improved resilient networking; and Riverbed Flex, a new subscription-based consumption model. Riverbed's focus is on using AI automation to help organisations identify and resolve IT issues, backed by over two decades of experience in data collection, AI, and machine learning. Its open, AI-powered platform supports a range of digital experience and IT efficiency improvements for customers operating in complex digital environments.
